CyberSec.Space Logo
Back to CVE Browser

CVE-2006-5270

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0820%
EPSS Percentile37.49th
PublishedFeb 13, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Integer overflow in the Microsoft Malware Protection Engine (mpengine.dll), as used by Windows Live OneCare, Antigen, Defender, and Forefront Security, allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Antigen

All versions
πŸ“¦
Microsoft

Forefront Security

All versions
πŸ“¦
Microsoft

Malware Protection Engine

All versions
πŸ“¦
Microsoft

Windows Defender

All versions
πŸ“¦
Microsoft

Windows Live Onecare

All versions

References & Advisories

πŸ”— http://secunia.com/advisories/24146
πŸ”— http://www.kb.cert.org/vuls/id/511577
πŸ”— http://www.osvdb.org/31888
πŸ”— http://www.securityfocus.com/bid/22479
πŸ”— http://www.securitytracker.com/id?1017636
πŸ”— http://www.us-cert.gov/cas/techalerts/TA07-044A.html
πŸ”— http://www.vupen.com/english/advisories/2007/0579
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-010

Related Vulnerabilities

CVE-2004-23485.0

Sybari AntiGen for Domino 7.0 Build 722 SR2 allows remote attackers to cause a denial of service (hang) via an encrypted ZIP file ...

CVE-2005-30275.0

Sybari Antigen 8.0 SR2 does not properly filter SMTP messages, which allows remote attackers to bypass custom filter rules and sen...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...